tam.digital
Issued by R3
About this certificate
This digital certificate with serial number 04:9c:24:c4:64:df:d3:b8:18:04:c0:a4:e5:0c:f9:f4:20:8c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tam.digital
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:9c:24:c4:64:df:d3:b8:18:04:c0:a4:e5:0c:f9:f4:20:8cSerial Number (int): 401582064910714281183117332417253295267980
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 85:dd:6f:26:e4:26:1f:4b:d4:81:8e:fe:c3:08:71:24:c5:53:86:2b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 59:48:c9:98:c1:cc:27:bd:11:e6:45:a5:df:8a:5f:10:79:55:a3:0e
Fingerprint (sha256): 5d:4e:e1:fe:fa:e4:be:19:ea:3e:36:2e:6d:5b:fb:da:da:b7:b1:d7:dc:9d:6f:e3:49:45:d2:fb:6a:b7:b8:42
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tam.digital
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tam.digital
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tam.digital
www.tam.digital
www.tam.digital
Other certificates including the domain name tam.digital
(limited to 100 certificates)
Certificate
The complete raw certificate details for tam.digital in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgISBJwkxGTf07gYBMCk5Qz59CCMMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTQxNTA3NDBaFw0yNDA0MTMxNTA3MzlaMBYxFDASBgNVBAMT C3RhbS5kaWdpdGFsMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAhpos MMtpltYjZtgRNiZqCGfdl8yvcJPcspO22SFdRBlzymAX3UwoDGqzDABU2HF62eUx +ObFwVG8gZ0DYmdHx5Y0/DPpGd6MA8OXc9U4yZLCGhTLhBjkjV8aO75YW4oS7Rjb vN29haeNlp9awohyVZMlzZM3EOFlI3ueYe37uONKaeGGkRyiVAuTWQrP21BxYuVR f+0vO/6yhhLOiXhQTqF4+SxJNxaUCAnKIYiLphWGE1OG63Z15TbUbk/Upsxhi/xY z+FZ04dpwaRHjYL8e7eleXtDFFMm+Gkr0z/Fu1d4RpGhyVGGfN+4kLGxOWCGKpSl O5al+0GHea6fT1sltbVd4J1qQh0c0m9LbFXHjLRiDGXAkOGOqXFo/uGrpqpu+adH GLu7q8lIzNZ9QfbcHTyb3+KdScVM3ulpyjjgu9KPNABncZTXEfECCVOtcKl4WZb6 yniXv2XbcQ85mabxspxZGZLXuCgnbgin1jnpPM2uT+VMsh2uiPZwTt6rg+qJD7uD QnY/d5v/eRuf6ZZN0dJVgswFlJNYFAsYZ/q5MTL2biC/pR06p+l/Ic6cU+rtyytl 59FiM2ef8H/tPWt8ezHGp1oF/KczHtRQFF4+dObzSkt3+4mE6r8Lwc/v6SdJdG0v pofRn2aRnXvyZORKXBeL02rog5ohcHaUvM4GvZUCAwEAAaOCAhwwggIYMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUhd1vJuQmH0vUgY7+wwhxJMVThiswHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILdGFtLmRpZ2l0YWyCD3d3dy50YW0u ZGlnaXRhbDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfME gfAA7gB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjQi6kUkA AAQDAEYwRAIgONqTEXdybEWfKsj8sj289das6I41cyT/LvfQ7Pdeo/YCIBd5ltfx z0Onmg4u0k1OFvlvXI7Jk3i4D0/qvx2dbP/BAHUAouK/1h7eLy8HoNZObTen3GVD sMa1LqLat4r4mm31F9gAAAGNCLqRegAABAMARjBEAiAMdREDyVMvDQzJsdY/a9Xt A/jJIZzQjPy/oc5vVuayjAIgfTiM/HPdqXGPU5j3RtKCVIgpy6r6kUe/J6b7yS2h hikwDQYJKoZIhvcNAQELBQADggEBAB0cvvPDt1TLTGc/Fli3g8Oju4ynhZFcYeMM U2aYeeDJic8yHPz6flY75ykUn2l40ewT/2472GhFjRB+hQtXule4RXdYJ7ddPhLT EafQaQjHcuMPqnhYpKmR6xJiqGaZ0cS2BOQvWmpR0JszQbm8cxkBwcE4X8Ub/uUG FaUq7kqMXYcfuiX5LVASY+6B6CHdXXFVUJ5Dr/C4ApbdlWyjEU88yI93hlAHTxSp rAWZZsF1nrMoKTBwOeAOjTYtQEKXrtojdrYpCR5AdvVBD6lUjGsBQm/8GB18IeAi FRQoD4Z/Iyc/m/GKWydP2hnHwUTcZgbozIP5c1RXLDAylr0uoFc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAhposMMtpltYjZtgRNiZq CGfdl8yvcJPcspO22SFdRBlzymAX3UwoDGqzDABU2HF62eUx+ObFwVG8gZ0DYmdH x5Y0/DPpGd6MA8OXc9U4yZLCGhTLhBjkjV8aO75YW4oS7RjbvN29haeNlp9awohy VZMlzZM3EOFlI3ueYe37uONKaeGGkRyiVAuTWQrP21BxYuVRf+0vO/6yhhLOiXhQ TqF4+SxJNxaUCAnKIYiLphWGE1OG63Z15TbUbk/Upsxhi/xYz+FZ04dpwaRHjYL8 e7eleXtDFFMm+Gkr0z/Fu1d4RpGhyVGGfN+4kLGxOWCGKpSlO5al+0GHea6fT1sl tbVd4J1qQh0c0m9LbFXHjLRiDGXAkOGOqXFo/uGrpqpu+adHGLu7q8lIzNZ9Qfbc HTyb3+KdScVM3ulpyjjgu9KPNABncZTXEfECCVOtcKl4WZb6yniXv2XbcQ85mabx spxZGZLXuCgnbgin1jnpPM2uT+VMsh2uiPZwTt6rg+qJD7uDQnY/d5v/eRuf6ZZN 0dJVgswFlJNYFAsYZ/q5MTL2biC/pR06p+l/Ic6cU+rtyytl59FiM2ef8H/tPWt8 ezHGp1oF/KczHtRQFF4+dObzSkt3+4mE6r8Lwc/v6SdJdG0vpofRn2aRnXvyZORK XBeL02rog5ohcHaUvM4GvZUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 401582064910714281183117332417253295267980 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-14 15:07:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-13 15:07:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tam.digital' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 549129216883379781086545547502793053252459353158615753726050760096272243564440428869353126460286983541647264790023800208446269831035820849605530552656310548196800873546735297839792153621476474329539293298369720542361901900335095884985935013054583480722242870639659787116731138323990400670059196782777114307011405920144224831852058924637896218168575814661324082153591623016636810816832128556155773957485625776520551216962863164324123731320472278693650183015347466305595479078440019659690415659151833095463132520996329756377612571751037161255400181194861735353081139481650894063268016878357954355644536626100894966141138244065617939469021219112795696836553705493887687158882261962221477048064290381166841609604528229982794780205981761435439848600716307863763820454220345190912738299226155491808682501077479760822359943435917078123144065227006861425951034838551396132064198762475149236256045885934352321329822820941811510629762650893605278622774416606258342402827329427736806742135159244715206753170849436273326900041416726529116527938496479782434906583779023436121770933788446492383003127895483841573265266773928740043912246178853591402000820263206955705947745836716426505538647116761054833961809292047086925710749068830907197819370901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85dd6f26e4261f4bd4818efec3087124c553862b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tam.digital' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tam.digital' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d08ba91490000040300463044022038da931177726c459f2ac8fcb23dbcf5d6ace88e357324ff2ef7d0ecf75ea3f60220177996d7f1cf43a79a0e2ed24d4e16f96f5c8ec99378b80f4feabf1d9d6cffc1007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d08ba917a000004030046304402200c751103c9532f0d0cc9b1d63f6bd5ed03f8c9219cd08cfcbfa1ce6f56e6b28c02207d388cfc73dda9718f5398f746d282548829cbaafa9147bf27a6fbc92da18629 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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